
<!DOCTYPE HTML>
<html lang="zh-hans" >
    <head>
        <meta charset="UTF-8">
        <meta content="text/html; charset=utf-8" http-equiv="Content-Type">
        <title>Javascript教程 - CORS 通信 - 小白AI.易名</title>
        <meta http-equiv="X-UA-Compatible" content="IE=edge" />
        <meta name="description" content="Javascript教程"><meta name="keywords" content="小白AI.易名,xiaobaiai.net,Javascript,入门,教程,博客">
        <meta name="generator" content="GitBook 3.2.3">
        <meta name="author" content="小白AI.易名">
        
        
    
    <link rel="stylesheet" href="../../gitbook/style.css">

    
            
                
                <link rel="stylesheet" href="../../gitbook/gitbook-plugin-chapter-fold/chapter-fold.css">
                
            
                
                <link rel="stylesheet" href="../../gitbook/gitbook-plugin-back-to-top-button/plugin.css">
                
            
                
                <link rel="stylesheet" href="../../gitbook/gitbook-plugin-search-pro/search.css">
                
            
                
                <link rel="stylesheet" href="../../gitbook/gitbook-plugin-page-footer-ex/style/plugin.css">
                
            
                
                <link rel="stylesheet" href="../../gitbook/gitbook-plugin-highlight/website.css">
                
            
                
                <link rel="stylesheet" href="../../gitbook/gitbook-plugin-search/search.css">
                
            
                
                <link rel="stylesheet" href="../../gitbook/gitbook-plugin-fontsettings/website.css">
                
            
        

    

    
        
    
        
    
        
    
        
    
        
    
        
    

        
    
    
    
    <meta name="HandheldFriendly" content="true"/>
    <meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=no">
    <meta name="apple-mobile-web-app-capable" content="yes">
    <meta name="apple-mobile-web-app-status-bar-style" content="black">
    <link rel="apple-touch-icon-precomposed" sizes="152x152" href="../../gitbook/images/apple-touch-icon-precomposed-152.png">
    <link rel="shortcut icon" href="../../gitbook/images/favicon.ico" type="image/x-icon">

    
    <link rel="next" href="storage.html" />
    
    
    <link rel="prev" href="same-origin.html" />
    

    
        <link rel="shortcut icon" href='../../assets/images/favicon.ico' type="image/x-icon">
    
    
        <link rel="bookmark" href='../../assets/images/favicon.ico' type="image/x-icon">
    
    
        <link rel="apple-touch-icon" href='../../assets/images/apple-touch-icon.png'>
    
    
        
        <link rel="apple-touch-icon" sizes="120x120" href="../../assets/images/apple-touch-icon-120x120.png">
        
        <link rel="apple-touch-icon" sizes="180x180" href="../../assets/images/apple-touch-icon-180x180.png">
        
    

    </head>
    <body>
        
<div class="book">
    <div class="book-summary">
        
            
<div id="book-search-input" role="search">
    <input type="text" placeholder="输入并搜索" />
</div>

            
                <nav role="navigation">
                


<ul class="summary">
    
    

    

    
        
        
    
        <li class="chapter " data-level="1.1" data-path="../../">
            
                <a href="../../">
            
                    
                    简介
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.2" data-path="../basic/">
            
                <a href="../basic/">
            
                    
                    入门篇
            
                </a>
            

            
            <ul class="articles">
                
    
        <li class="chapter " data-level="1.2.1" data-path="../basic/introduction.html">
            
                <a href="../basic/introduction.html">
            
                    
                    导论
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.2.2" data-path="../basic/history.html">
            
                <a href="../basic/history.html">
            
                    
                    历史
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.2.3" data-path="../basic/grammar.html">
            
                <a href="../basic/grammar.html">
            
                    
                    基本语法
            
                </a>
            

            
        </li>
    

            </ul>
            
        </li>
    
        <li class="chapter " data-level="1.3" data-path="../types/">
            
                <a href="../types/">
            
                    
                    数据类型
            
                </a>
            

            
            <ul class="articles">
                
    
        <li class="chapter " data-level="1.3.1" data-path="../types/general.html">
            
                <a href="../types/general.html">
            
                    
                    概述
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.3.2" data-path="../types/null-undefined-boolean.html">
            
                <a href="../types/null-undefined-boolean.html">
            
                    
                    null,undefined和布尔值
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.3.3" data-path="../types/number.html">
            
                <a href="../types/number.html">
            
                    
                    数值
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.3.4" data-path="../types/string.html">
            
                <a href="../types/string.html">
            
                    
                    字符串
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.3.5" data-path="../types/object.html">
            
                <a href="../types/object.html">
            
                    
                    对象
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.3.6" data-path="../types/function.html">
            
                <a href="../types/function.html">
            
                    
                    函数
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.3.7" data-path="../types/array.html">
            
                <a href="../types/array.html">
            
                    
                    数组
            
                </a>
            

            
        </li>
    

            </ul>
            
        </li>
    
        <li class="chapter " data-level="1.4" data-path="../operators/">
            
                <a href="../operators/">
            
                    
                    运算符
            
                </a>
            

            
            <ul class="articles">
                
    
        <li class="chapter " data-level="1.4.1" data-path="../operators/arithmetic.html">
            
                <a href="../operators/arithmetic.html">
            
                    
                    算术运算符
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.4.2" data-path="../operators/comparison.html">
            
                <a href="../operators/comparison.html">
            
                    
                    比较运算符
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.4.3" data-path="../operators/boolean.html">
            
                <a href="../operators/boolean.html">
            
                    
                    布尔运算符
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.4.4" data-path="../operators/bit.html">
            
                <a href="../operators/bit.html">
            
                    
                    二进制位运算符
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.4.5" data-path="../operators/priority.html">
            
                <a href="../operators/priority.html">
            
                    
                    其他运算符，运算顺序
            
                </a>
            

            
        </li>
    

            </ul>
            
        </li>
    
        <li class="chapter " data-level="1.5" data-path="../features/">
            
                <a href="../features/">
            
                    
                    语法专题
            
                </a>
            

            
            <ul class="articles">
                
    
        <li class="chapter " data-level="1.5.1" data-path="../features/conversion.html">
            
                <a href="../features/conversion.html">
            
                    
                    数据类型的转换
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.5.2" data-path="../features/error.html">
            
                <a href="../features/error.html">
            
                    
                    错误处理机制
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.5.3" data-path="../features/style.html">
            
                <a href="../features/style.html">
            
                    
                    编程风格
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.5.4" data-path="../features/console.html">
            
                <a href="../features/console.html">
            
                    
                    console 对象与控制台
            
                </a>
            

            
        </li>
    

            </ul>
            
        </li>
    
        <li class="chapter " data-level="1.6" data-path="../stdlib/">
            
                <a href="../stdlib/">
            
                    
                    标准库
            
                </a>
            

            
            <ul class="articles">
                
    
        <li class="chapter " data-level="1.6.1" data-path="../stdlib/object.html">
            
                <a href="../stdlib/object.html">
            
                    
                    Object 对象
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.6.2" data-path="../stdlib/attributes.html">
            
                <a href="../stdlib/attributes.html">
            
                    
                    属性描述对象
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.6.3" data-path="../stdlib/array.html">
            
                <a href="../stdlib/array.html">
            
                    
                    Array 对象
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.6.4" data-path="../stdlib/wrapper.html">
            
                <a href="../stdlib/wrapper.html">
            
                    
                    包装对象
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.6.5" data-path="../stdlib/boolean.html">
            
                <a href="../stdlib/boolean.html">
            
                    
                    Boolean 对象
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.6.6" data-path="../stdlib/number.html">
            
                <a href="../stdlib/number.html">
            
                    
                    Number 对象
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.6.7" data-path="../stdlib/string.html">
            
                <a href="../stdlib/string.html">
            
                    
                    String 对象
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.6.8" data-path="../stdlib/math.html">
            
                <a href="../stdlib/math.html">
            
                    
                    Math 对象
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.6.9" data-path="../stdlib/date.html">
            
                <a href="../stdlib/date.html">
            
                    
                    Date 对象
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.6.10" data-path="../stdlib/regexp.html">
            
                <a href="../stdlib/regexp.html">
            
                    
                    RegExp 对象
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.6.11" data-path="../stdlib/json.html">
            
                <a href="../stdlib/json.html">
            
                    
                    JSON 对象
            
                </a>
            

            
        </li>
    

            </ul>
            
        </li>
    
        <li class="chapter " data-level="1.7" data-path="../oop/">
            
                <a href="../oop/">
            
                    
                    面向对象编程
            
                </a>
            

            
            <ul class="articles">
                
    
        <li class="chapter " data-level="1.7.1" data-path="../oop/new.html">
            
                <a href="../oop/new.html">
            
                    
                    实例对象与 New 命令
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.7.2" data-path="../oop/this.html">
            
                <a href="../oop/this.html">
            
                    
                    this 关键字
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.7.3" data-path="../oop/prototype.html">
            
                <a href="../oop/prototype.html">
            
                    
                    对象的继承
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.7.4" data-path="../oop/object.html">
            
                <a href="../oop/object.html">
            
                    
                    Object 对象的相关方法
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.7.5" data-path="../oop/strict.html">
            
                <a href="../oop/strict.html">
            
                    
                    严格模式
            
                </a>
            

            
        </li>
    

            </ul>
            
        </li>
    
        <li class="chapter " data-level="1.8" data-path="../async/">
            
                <a href="../async/">
            
                    
                    异步操作
            
                </a>
            

            
            <ul class="articles">
                
    
        <li class="chapter " data-level="1.8.1" data-path="../async/general.html">
            
                <a href="../async/general.html">
            
                    
                    概述
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.8.2" data-path="../async/timer.html">
            
                <a href="../async/timer.html">
            
                    
                    定时器
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.8.3" data-path="../async/promise.html">
            
                <a href="../async/promise.html">
            
                    
                    Promise 对象
            
                </a>
            

            
        </li>
    

            </ul>
            
        </li>
    
        <li class="chapter " data-level="1.9" data-path="../dom/">
            
                <a href="../dom/">
            
                    
                    DOM
            
                </a>
            

            
            <ul class="articles">
                
    
        <li class="chapter " data-level="1.9.1" data-path="../dom/general.html">
            
                <a href="../dom/general.html">
            
                    
                    概述
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.9.2" data-path="../dom/node.html">
            
                <a href="../dom/node.html">
            
                    
                    Node 接口
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.9.3" data-path="../dom/nodelist.html">
            
                <a href="../dom/nodelist.html">
            
                    
                    NodeList 接口，HTMLCollection 接口
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.9.4" data-path="../dom/parentnode.html">
            
                <a href="../dom/parentnode.html">
            
                    
                    ParentNode 接口，ChildNode 接口
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.9.5" data-path="../dom/document.html">
            
                <a href="../dom/document.html">
            
                    
                    Document 节点
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.9.6" data-path="../dom/element.html">
            
                <a href="../dom/element.html">
            
                    
                    Element 节点
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.9.7" data-path="../dom/attributes.html">
            
                <a href="../dom/attributes.html">
            
                    
                    属性的操作
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.9.8" data-path="../dom/text.html">
            
                <a href="../dom/text.html">
            
                    
                    Text 节点和 DocumentFragment 节点
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.9.9" data-path="../dom/css.html">
            
                <a href="../dom/css.html">
            
                    
                    CSS 操作
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.9.10" data-path="../dom/mutationobserver.html">
            
                <a href="../dom/mutationobserver.html">
            
                    
                    Mutation Observer API
            
                </a>
            

            
        </li>
    

            </ul>
            
        </li>
    
        <li class="chapter " data-level="1.10" data-path="../events/">
            
                <a href="../events/">
            
                    
                    事件
            
                </a>
            

            
            <ul class="articles">
                
    
        <li class="chapter " data-level="1.10.1" data-path="../events/eventtarget.html">
            
                <a href="../events/eventtarget.html">
            
                    
                    EventTarget 接口
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.10.2" data-path="../events/model.html">
            
                <a href="../events/model.html">
            
                    
                    事件模型
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.10.3" data-path="../events/event.html">
            
                <a href="../events/event.html">
            
                    
                    Event 对象
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.10.4" data-path="../events/mouse.html">
            
                <a href="../events/mouse.html">
            
                    
                    鼠标事件
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.10.5" data-path="../events/keyboard.html">
            
                <a href="../events/keyboard.html">
            
                    
                    键盘事件
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.10.6" data-path="../events/progress.html">
            
                <a href="../events/progress.html">
            
                    
                    进度事件
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.10.7" data-path="../events/form.html">
            
                <a href="../events/form.html">
            
                    
                    表单事件
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.10.8" data-path="../events/touch.html">
            
                <a href="../events/touch.html">
            
                    
                    触摸事件
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.10.9" data-path="../events/drag.html">
            
                <a href="../events/drag.html">
            
                    
                    拖拉事件
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.10.10" data-path="../events/common.html">
            
                <a href="../events/common.html">
            
                    
                    其他常见事件
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.10.11" data-path="../events/globaleventhandlers.html">
            
                <a href="../events/globaleventhandlers.html">
            
                    
                    GlobalEventHandlers 接口
            
                </a>
            

            
        </li>
    

            </ul>
            
        </li>
    
        <li class="chapter " data-level="1.11" data-path="./">
            
                <a href="./">
            
                    
                    浏览器模型
            
                </a>
            

            
            <ul class="articles">
                
    
        <li class="chapter " data-level="1.11.1" data-path="engine.html">
            
                <a href="engine.html">
            
                    
                    浏览器模型概述
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.11.2" data-path="window.html">
            
                <a href="window.html">
            
                    
                    window 对象
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.11.3" data-path="navigator.html">
            
                <a href="navigator.html">
            
                    
                    Navigatror 对象，Screen 对象
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.11.4" data-path="cookie.html">
            
                <a href="cookie.html">
            
                    
                    Cookie
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.11.5" data-path="xmlhttprequest.html">
            
                <a href="xmlhttprequest.html">
            
                    
                    XMLHttpRequest 对象
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.11.6" data-path="same-origin.html">
            
                <a href="same-origin.html">
            
                    
                    同源限制
            
                </a>
            

            
        </li>
    
        <li class="chapter active" data-level="1.11.7" data-path="cors.html">
            
                <a href="cors.html">
            
                    
                    CORS 通信
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.11.8" data-path="storage.html">
            
                <a href="storage.html">
            
                    
                    Storage 接口
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.11.9" data-path="history.html">
            
                <a href="history.html">
            
                    
                    History 对象
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.11.10" data-path="location.html">
            
                <a href="location.html">
            
                    
                    Location对象，URL对象，URLSearchParams 对象
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.11.11" data-path="arraybuffer.html">
            
                <a href="arraybuffer.html">
            
                    
                    ArrayBuffer 对象，Blob对象
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.11.12" data-path="file.html">
            
                <a href="file.html">
            
                    
                    File 对象，FileList 对象，FileReader 对象
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.11.13" data-path="form.html">
            
                <a href="form.html">
            
                    
                    表单，FormData 对象
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.11.14" data-path="indexeddb.html">
            
                <a href="indexeddb.html">
            
                    
                    IndexedDB API
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.11.15" data-path="webworker.html">
            
                <a href="webworker.html">
            
                    
                    web worker
            
                </a>
            

            
        </li>
    

            </ul>
            
        </li>
    
        <li class="chapter " data-level="1.12" data-path="../elements/">
            
                <a href="../elements/">
            
                    
                    附录:网页元素接口
            
                </a>
            

            
            <ul class="articles">
                
    
        <li class="chapter " data-level="1.12.1" data-path="../elements/a.html">
            
                <a href="../elements/a.html">
            
                    
                    a超链接
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.12.2" data-path="../elements/image.html">
            
                <a href="../elements/image.html">
            
                    
                    image图片
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.12.3" data-path="../elements/form.html">
            
                <a href="../elements/form.html">
            
                    
                    form表单
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.12.4" data-path="../elements/input.html">
            
                <a href="../elements/input.html">
            
                    
                    input文本框
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.12.5" data-path="../elements/button.html">
            
                <a href="../elements/button.html">
            
                    
                    button按钮
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.12.6" data-path="../elements/option.html">
            
                <a href="../elements/option.html">
            
                    
                    option选项
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="1.12.7" data-path="../elements/video.html">
            
                <a href="../elements/video.html">
            
                    
                    video,audio音视频
            
                </a>
            

            
        </li>
    

            </ul>
            
        </li>
    

    

    <li class="divider"></li>

    <li>
        <a href="https://www.gitbook.com" target="_blank" rel="nofollow" class="gitbook-link">
            本书使用 GitBook 发布
        </a>
    </li>
</ul>


                </nav>
            
        
    </div>

    <div class="book-body">
        
            <div class="body-inner">
                
                    

<div class="book-header" role="navigation">
    

    <!-- Title -->
    <h1>
        <i class="fa fa-circle-o-notch fa-spin"></i>
        <a href="../.." >CORS 通信</a>
    </h1>
</div>




                    <div class="page-wrapper" tabindex="-1" role="main">
                        <div class="page-inner">
                            
<div id="book-search-results">
    <div class="search-noresults">
    
<div id="book-search-results">
    <div class="search-noresults">
    
                                <section class="normal markdown-section">
                                
                                <h1 id="cors-&#x901A;&#x4FE1;">CORS &#x901A;&#x4FE1;</h1>
<p>CORS &#x662F;&#x4E00;&#x4E2A; W3C &#x6807;&#x51C6;&#xFF0C;&#x5168;&#x79F0;&#x662F;&#x201C;&#x8DE8;&#x57DF;&#x8D44;&#x6E90;&#x5171;&#x4EAB;&#x201D;&#xFF08;Cross-origin resource sharing&#xFF09;&#x3002;&#x5B83;&#x5141;&#x8BB8;&#x6D4F;&#x89C8;&#x5668;&#x5411;&#x8DE8;&#x57DF;&#x7684;&#x670D;&#x52A1;&#x5668;&#xFF0C;&#x53D1;&#x51FA;<code>XMLHttpRequest</code>&#x8BF7;&#x6C42;&#xFF0C;&#x4ECE;&#x800C;&#x514B;&#x670D;&#x4E86; AJAX &#x53EA;&#x80FD;&#x540C;&#x6E90;&#x4F7F;&#x7528;&#x7684;&#x9650;&#x5236;&#x3002;</p>
<h2 id="&#x7B80;&#x4ECB;">&#x7B80;&#x4ECB;</h2>
<p>CORS &#x9700;&#x8981;&#x6D4F;&#x89C8;&#x5668;&#x548C;&#x670D;&#x52A1;&#x5668;&#x540C;&#x65F6;&#x652F;&#x6301;&#x3002;&#x76EE;&#x524D;&#xFF0C;&#x6240;&#x6709;&#x6D4F;&#x89C8;&#x5668;&#x90FD;&#x652F;&#x6301;&#x8BE5;&#x529F;&#x80FD;&#x3002;</p>
<p>&#x6574;&#x4E2A; CORS &#x901A;&#x4FE1;&#x8FC7;&#x7A0B;&#xFF0C;&#x90FD;&#x662F;&#x6D4F;&#x89C8;&#x5668;&#x81EA;&#x52A8;&#x5B8C;&#x6210;&#xFF0C;&#x4E0D;&#x9700;&#x8981;&#x7528;&#x6237;&#x53C2;&#x4E0E;&#x3002;&#x5BF9;&#x4E8E;&#x5F00;&#x53D1;&#x8005;&#x6765;&#x8BF4;&#xFF0C;CORS &#x901A;&#x4FE1;&#x4E0E;&#x666E;&#x901A;&#x7684; AJAX &#x901A;&#x4FE1;&#x6CA1;&#x6709;&#x5DEE;&#x522B;&#xFF0C;&#x4EE3;&#x7801;&#x5B8C;&#x5168;&#x4E00;&#x6837;&#x3002;&#x6D4F;&#x89C8;&#x5668;&#x4E00;&#x65E6;&#x53D1;&#x73B0; AJAX &#x8BF7;&#x6C42;&#x8DE8;&#x57DF;&#xFF0C;&#x5C31;&#x4F1A;&#x81EA;&#x52A8;&#x6DFB;&#x52A0;&#x4E00;&#x4E9B;&#x9644;&#x52A0;&#x7684;&#x5934;&#x4FE1;&#x606F;&#xFF0C;&#x6709;&#x65F6;&#x8FD8;&#x4F1A;&#x591A;&#x51FA;&#x4E00;&#x6B21;&#x9644;&#x52A0;&#x7684;&#x8BF7;&#x6C42;&#xFF0C;&#x4F46;&#x7528;&#x6237;&#x4E0D;&#x4F1A;&#x6709;&#x611F;&#x77E5;&#x3002;&#x56E0;&#x6B64;&#xFF0C;&#x5B9E;&#x73B0; CORS &#x901A;&#x4FE1;&#x7684;&#x5173;&#x952E;&#x662F;&#x670D;&#x52A1;&#x5668;&#x3002;&#x53EA;&#x8981;&#x670D;&#x52A1;&#x5668;&#x5B9E;&#x73B0;&#x4E86; CORS &#x63A5;&#x53E3;&#xFF0C;&#x5C31;&#x53EF;&#x4EE5;&#x8DE8;&#x57DF;&#x901A;&#x4FE1;&#x3002;</p>
<h2 id="&#x4E24;&#x79CD;&#x8BF7;&#x6C42;">&#x4E24;&#x79CD;&#x8BF7;&#x6C42;</h2>
<p>CORS &#x8BF7;&#x6C42;&#x5206;&#x6210;&#x4E24;&#x7C7B;&#xFF1A;&#x7B80;&#x5355;&#x8BF7;&#x6C42;&#xFF08;simple request&#xFF09;&#x548C;&#x975E;&#x7B80;&#x5355;&#x8BF7;&#x6C42;&#xFF08;not-so-simple request&#xFF09;&#x3002;</p>
<p>&#x53EA;&#x8981;&#x540C;&#x65F6;&#x6EE1;&#x8DB3;&#x4EE5;&#x4E0B;&#x4E24;&#x5927;&#x6761;&#x4EF6;&#xFF0C;&#x5C31;&#x5C5E;&#x4E8E;&#x7B80;&#x5355;&#x8BF7;&#x6C42;&#x3002;</p>
<p>&#xFF08;1&#xFF09;&#x8BF7;&#x6C42;&#x65B9;&#x6CD5;&#x662F;&#x4EE5;&#x4E0B;&#x4E09;&#x79CD;&#x65B9;&#x6CD5;&#x4E4B;&#x4E00;&#x3002;</p>
<blockquote>
<ul>
<li>HEAD</li>
<li>GET</li>
<li>POST</li>
</ul>
</blockquote>
<p>&#xFF08;2&#xFF09;HTTP &#x7684;&#x5934;&#x4FE1;&#x606F;&#x4E0D;&#x8D85;&#x51FA;&#x4EE5;&#x4E0B;&#x51E0;&#x79CD;&#x5B57;&#x6BB5;&#x3002;</p>
<blockquote>
<ul>
<li>Accept</li>
<li>Accept-Language</li>
<li>Content-Language</li>
<li>Last-Event-ID</li>
<li>Content-Type&#xFF1A;&#x53EA;&#x9650;&#x4E8E;&#x4E09;&#x4E2A;&#x503C;<code>application/x-www-form-urlencoded</code>&#x3001;<code>multipart/form-data</code>&#x3001;<code>text/plain</code></li>
</ul>
</blockquote>
<p>&#x51E1;&#x662F;&#x4E0D;&#x540C;&#x65F6;&#x6EE1;&#x8DB3;&#x4E0A;&#x9762;&#x4E24;&#x4E2A;&#x6761;&#x4EF6;&#xFF0C;&#x5C31;&#x5C5E;&#x4E8E;&#x975E;&#x7B80;&#x5355;&#x8BF7;&#x6C42;&#x3002;&#x4E00;&#x53E5;&#x8BDD;&#xFF0C;&#x7B80;&#x5355;&#x8BF7;&#x6C42;&#x5C31;&#x662F;&#x7B80;&#x5355;&#x7684; HTTP &#x65B9;&#x6CD5;&#x4E0E;&#x7B80;&#x5355;&#x7684; HTTP &#x5934;&#x4FE1;&#x606F;&#x7684;&#x7ED3;&#x5408;&#x3002;</p>
<p>&#x8FD9;&#x6837;&#x5212;&#x5206;&#x7684;&#x539F;&#x56E0;&#x662F;&#xFF0C;&#x8868;&#x5355;&#x5728;&#x5386;&#x53F2;&#x4E0A;&#x4E00;&#x76F4;&#x53EF;&#x4EE5;&#x8DE8;&#x57DF;&#x53D1;&#x51FA;&#x8BF7;&#x6C42;&#x3002;&#x7B80;&#x5355;&#x8BF7;&#x6C42;&#x5C31;&#x662F;&#x8868;&#x5355;&#x8BF7;&#x6C42;&#xFF0C;&#x6D4F;&#x89C8;&#x5668;&#x6CBF;&#x88AD;&#x4E86;&#x4F20;&#x7EDF;&#x7684;&#x5904;&#x7406;&#x65B9;&#x5F0F;&#xFF0C;&#x4E0D;&#x628A;&#x884C;&#x4E3A;&#x590D;&#x6742;&#x5316;&#xFF0C;&#x5426;&#x5219;&#x5F00;&#x53D1;&#x8005;&#x53EF;&#x80FD;&#x8F6C;&#x800C;&#x4F7F;&#x7528;&#x8868;&#x5355;&#xFF0C;&#x89C4;&#x907F; CORS &#x7684;&#x9650;&#x5236;&#x3002;&#x5BF9;&#x4E8E;&#x975E;&#x7B80;&#x5355;&#x8BF7;&#x6C42;&#xFF0C;&#x6D4F;&#x89C8;&#x5668;&#x4F1A;&#x91C7;&#x7528;&#x65B0;&#x7684;&#x5904;&#x7406;&#x65B9;&#x5F0F;&#x3002;</p>
<h2 id="&#x7B80;&#x5355;&#x8BF7;&#x6C42;">&#x7B80;&#x5355;&#x8BF7;&#x6C42;</h2>
<h3 id="&#x57FA;&#x672C;&#x6D41;&#x7A0B;">&#x57FA;&#x672C;&#x6D41;&#x7A0B;</h3>
<p>&#x5BF9;&#x4E8E;&#x7B80;&#x5355;&#x8BF7;&#x6C42;&#xFF0C;&#x6D4F;&#x89C8;&#x5668;&#x76F4;&#x63A5;&#x53D1;&#x51FA; CORS &#x8BF7;&#x6C42;&#x3002;&#x5177;&#x4F53;&#x6765;&#x8BF4;&#xFF0C;&#x5C31;&#x662F;&#x5728;&#x5934;&#x4FE1;&#x606F;&#x4E4B;&#x4E2D;&#xFF0C;&#x589E;&#x52A0;&#x4E00;&#x4E2A;<code>Origin</code>&#x5B57;&#x6BB5;&#x3002;</p>
<p>&#x4E0B;&#x9762;&#x662F;&#x4E00;&#x4E2A;&#x4F8B;&#x5B50;&#xFF0C;&#x6D4F;&#x89C8;&#x5668;&#x53D1;&#x73B0;&#x8FD9;&#x6B21;&#x8DE8;&#x57DF; AJAX &#x8BF7;&#x6C42;&#x662F;&#x7B80;&#x5355;&#x8BF7;&#x6C42;&#xFF0C;&#x5C31;&#x81EA;&#x52A8;&#x5728;&#x5934;&#x4FE1;&#x606F;&#x4E4B;&#x4E2D;&#xFF0C;&#x6DFB;&#x52A0;&#x4E00;&#x4E2A;<code>Origin</code>&#x5B57;&#x6BB5;&#x3002;</p>
<pre><code class="lang-http"><span class="hljs-keyword">GET</span> <span class="hljs-string">/cors</span> HTTP/1.1
<span class="hljs-attribute">Origin</span>: http://api.bob.com
<span class="hljs-attribute">Host</span>: api.alice.com
<span class="hljs-attribute">Accept-Language</span>: en-US
<span class="hljs-attribute">Connection</span>: keep-alive
<span class="hljs-attribute">User-Agent</span>: Mozilla/5.0...
</code></pre>
<p>&#x4E0A;&#x9762;&#x7684;&#x5934;&#x4FE1;&#x606F;&#x4E2D;&#xFF0C;<code>Origin</code>&#x5B57;&#x6BB5;&#x7528;&#x6765;&#x8BF4;&#x660E;&#xFF0C;&#x672C;&#x6B21;&#x8BF7;&#x6C42;&#x6765;&#x81EA;&#x54EA;&#x4E2A;&#x57DF;&#xFF08;&#x534F;&#x8BAE; + &#x57DF;&#x540D; + &#x7AEF;&#x53E3;&#xFF09;&#x3002;&#x670D;&#x52A1;&#x5668;&#x6839;&#x636E;&#x8FD9;&#x4E2A;&#x503C;&#xFF0C;&#x51B3;&#x5B9A;&#x662F;&#x5426;&#x540C;&#x610F;&#x8FD9;&#x6B21;&#x8BF7;&#x6C42;&#x3002;</p>
<p>&#x5982;&#x679C;<code>Origin</code>&#x6307;&#x5B9A;&#x7684;&#x6E90;&#xFF0C;&#x4E0D;&#x5728;&#x8BB8;&#x53EF;&#x8303;&#x56F4;&#x5185;&#xFF0C;&#x670D;&#x52A1;&#x5668;&#x4F1A;&#x8FD4;&#x56DE;&#x4E00;&#x4E2A;&#x6B63;&#x5E38;&#x7684; HTTP &#x56DE;&#x5E94;&#x3002;&#x6D4F;&#x89C8;&#x5668;&#x53D1;&#x73B0;&#xFF0C;&#x8FD9;&#x4E2A;&#x56DE;&#x5E94;&#x7684;&#x5934;&#x4FE1;&#x606F;&#x6CA1;&#x6709;&#x5305;&#x542B;<code>Access-Control-Allow-Origin</code>&#x5B57;&#x6BB5;&#xFF08;&#x8BE6;&#x89C1;&#x4E0B;&#x6587;&#xFF09;&#xFF0C;&#x5C31;&#x77E5;&#x9053;&#x51FA;&#x9519;&#x4E86;&#xFF0C;&#x4ECE;&#x800C;&#x629B;&#x51FA;&#x4E00;&#x4E2A;&#x9519;&#x8BEF;&#xFF0C;&#x88AB;<code>XMLHttpRequest</code>&#x7684;<code>onerror</code>&#x56DE;&#x8C03;&#x51FD;&#x6570;&#x6355;&#x83B7;&#x3002;&#x6CE8;&#x610F;&#xFF0C;&#x8FD9;&#x79CD;&#x9519;&#x8BEF;&#x65E0;&#x6CD5;&#x901A;&#x8FC7;&#x72B6;&#x6001;&#x7801;&#x8BC6;&#x522B;&#xFF0C;&#x56E0;&#x4E3A; HTTP &#x56DE;&#x5E94;&#x7684;&#x72B6;&#x6001;&#x7801;&#x6709;&#x53EF;&#x80FD;&#x662F;200&#x3002;</p>
<p>&#x5982;&#x679C;<code>Origin</code>&#x6307;&#x5B9A;&#x7684;&#x57DF;&#x540D;&#x5728;&#x8BB8;&#x53EF;&#x8303;&#x56F4;&#x5185;&#xFF0C;&#x670D;&#x52A1;&#x5668;&#x8FD4;&#x56DE;&#x7684;&#x54CD;&#x5E94;&#xFF0C;&#x4F1A;&#x591A;&#x51FA;&#x51E0;&#x4E2A;&#x5934;&#x4FE1;&#x606F;&#x5B57;&#x6BB5;&#x3002;</p>
<pre><code class="lang-http"><span class="hljs-attribute">Access-Control-Allow-Origin</span>: http://api.bob.com
<span class="hljs-attribute">Access-Control-Allow-Credentials</span>: true
<span class="hljs-attribute">Access-Control-Expose-Headers</span>: FooBar
<span class="hljs-attribute">Content-Type</span>: text/html; charset=utf-8
</code></pre>
<p>&#x4E0A;&#x9762;&#x7684;&#x5934;&#x4FE1;&#x606F;&#x4E4B;&#x4E2D;&#xFF0C;&#x6709;&#x4E09;&#x4E2A;&#x4E0E; CORS &#x8BF7;&#x6C42;&#x76F8;&#x5173;&#x7684;&#x5B57;&#x6BB5;&#xFF0C;&#x90FD;&#x4EE5;<code>Access-Control-</code>&#x5F00;&#x5934;&#x3002;</p>
<p><strong>&#xFF08;1&#xFF09;<code>Access-Control-Allow-Origin</code></strong></p>
<p>&#x8BE5;&#x5B57;&#x6BB5;&#x662F;&#x5FC5;&#x987B;&#x7684;&#x3002;&#x5B83;&#x7684;&#x503C;&#x8981;&#x4E48;&#x662F;&#x8BF7;&#x6C42;&#x65F6;<code>Origin</code>&#x5B57;&#x6BB5;&#x7684;&#x503C;&#xFF0C;&#x8981;&#x4E48;&#x662F;&#x4E00;&#x4E2A;<code>*</code>&#xFF0C;&#x8868;&#x793A;&#x63A5;&#x53D7;&#x4EFB;&#x610F;&#x57DF;&#x540D;&#x7684;&#x8BF7;&#x6C42;&#x3002;</p>
<p><strong>&#xFF08;2&#xFF09;<code>Access-Control-Allow-Credentials</code></strong></p>
<p>&#x8BE5;&#x5B57;&#x6BB5;&#x53EF;&#x9009;&#x3002;&#x5B83;&#x7684;&#x503C;&#x662F;&#x4E00;&#x4E2A;&#x5E03;&#x5C14;&#x503C;&#xFF0C;&#x8868;&#x793A;&#x662F;&#x5426;&#x5141;&#x8BB8;&#x53D1;&#x9001; Cookie&#x3002;&#x9ED8;&#x8BA4;&#x60C5;&#x51B5;&#x4E0B;&#xFF0C;Cookie &#x4E0D;&#x5305;&#x62EC;&#x5728; CORS &#x8BF7;&#x6C42;&#x4E4B;&#x4E2D;&#x3002;&#x8BBE;&#x4E3A;<code>true</code>&#xFF0C;&#x5373;&#x8868;&#x793A;&#x670D;&#x52A1;&#x5668;&#x660E;&#x786E;&#x8BB8;&#x53EF;&#xFF0C;&#x6D4F;&#x89C8;&#x5668;&#x53EF;&#x4EE5;&#x628A; Cookie &#x5305;&#x542B;&#x5728;&#x8BF7;&#x6C42;&#x4E2D;&#xFF0C;&#x4E00;&#x8D77;&#x53D1;&#x7ED9;&#x670D;&#x52A1;&#x5668;&#x3002;&#x8FD9;&#x4E2A;&#x503C;&#x4E5F;&#x53EA;&#x80FD;&#x8BBE;&#x4E3A;<code>true</code>&#xFF0C;&#x5982;&#x679C;&#x670D;&#x52A1;&#x5668;&#x4E0D;&#x8981;&#x6D4F;&#x89C8;&#x5668;&#x53D1;&#x9001; Cookie&#xFF0C;&#x4E0D;&#x53D1;&#x9001;&#x8BE5;&#x5B57;&#x6BB5;&#x5373;&#x53EF;&#x3002;</p>
<p><strong>&#xFF08;3&#xFF09;<code>Access-Control-Expose-Headers</code></strong></p>
<p>&#x8BE5;&#x5B57;&#x6BB5;&#x53EF;&#x9009;&#x3002;CORS &#x8BF7;&#x6C42;&#x65F6;&#xFF0C;<code>XMLHttpRequest</code>&#x5BF9;&#x8C61;&#x7684;<code>getResponseHeader()</code>&#x65B9;&#x6CD5;&#x53EA;&#x80FD;&#x62FF;&#x5230;6&#x4E2A;&#x670D;&#x52A1;&#x5668;&#x8FD4;&#x56DE;&#x7684;&#x57FA;&#x672C;&#x5B57;&#x6BB5;&#xFF1A;<code>Cache-Control</code>&#x3001;<code>Content-Language</code>&#x3001;<code>Content-Type</code>&#x3001;<code>Expires</code>&#x3001;<code>Last-Modified</code>&#x3001;<code>Pragma</code>&#x3002;&#x5982;&#x679C;&#x60F3;&#x62FF;&#x5230;&#x5176;&#x4ED6;&#x5B57;&#x6BB5;&#xFF0C;&#x5C31;&#x5FC5;&#x987B;&#x5728;<code>Access-Control-Expose-Headers</code>&#x91CC;&#x9762;&#x6307;&#x5B9A;&#x3002;&#x4E0A;&#x9762;&#x7684;&#x4F8B;&#x5B50;&#x6307;&#x5B9A;&#xFF0C;<code>getResponseHeader(&apos;FooBar&apos;)</code>&#x53EF;&#x4EE5;&#x8FD4;&#x56DE;<code>FooBar</code>&#x5B57;&#x6BB5;&#x7684;&#x503C;&#x3002;</p>
<h3 id="withcredentials-&#x5C5E;&#x6027;">withCredentials &#x5C5E;&#x6027;</h3>
<p>&#x4E0A;&#x9762;&#x8BF4;&#x5230;&#xFF0C;CORS &#x8BF7;&#x6C42;&#x9ED8;&#x8BA4;&#x4E0D;&#x5305;&#x542B; Cookie &#x4FE1;&#x606F;&#xFF08;&#x4EE5;&#x53CA; HTTP &#x8BA4;&#x8BC1;&#x4FE1;&#x606F;&#x7B49;&#xFF09;&#xFF0C;&#x8FD9;&#x662F;&#x4E3A;&#x4E86;&#x964D;&#x4F4E; CSRF &#x653B;&#x51FB;&#x7684;&#x98CE;&#x9669;&#x3002;&#x4F46;&#x662F;&#x67D0;&#x4E9B;&#x573A;&#x5408;&#xFF0C;&#x670D;&#x52A1;&#x5668;&#x53EF;&#x80FD;&#x9700;&#x8981;&#x62FF;&#x5230; Cookie&#xFF0C;&#x8FD9;&#x65F6;&#x9700;&#x8981;&#x670D;&#x52A1;&#x5668;&#x663E;&#x5F0F;&#x6307;&#x5B9A;<code>Access-Control-Allow-Credentials</code>&#x5B57;&#x6BB5;&#xFF0C;&#x544A;&#x8BC9;&#x6D4F;&#x89C8;&#x5668;&#x53EF;&#x4EE5;&#x53D1;&#x9001; Cookie&#x3002;</p>
<pre><code class="lang-http"><span class="hljs-attribute">Access-Control-Allow-Credentials</span>: true
</code></pre>
<p>&#x540C;&#x65F6;&#xFF0C;&#x5F00;&#x53D1;&#x8005;&#x5FC5;&#x987B;&#x5728; AJAX &#x8BF7;&#x6C42;&#x4E2D;&#x6253;&#x5F00;<code>withCredentials</code>&#x5C5E;&#x6027;&#x3002;</p>
<pre><code class="lang-javascript"><span class="hljs-keyword">var</span> xhr = <span class="hljs-keyword">new</span> XMLHttpRequest();
xhr.withCredentials = <span class="hljs-literal">true</span>;
</code></pre>
<p>&#x5426;&#x5219;&#xFF0C;&#x5373;&#x4F7F;&#x670D;&#x52A1;&#x5668;&#x8981;&#x6C42;&#x53D1;&#x9001; Cookie&#xFF0C;&#x6D4F;&#x89C8;&#x5668;&#x4E5F;&#x4E0D;&#x4F1A;&#x53D1;&#x9001;&#x3002;&#x6216;&#x8005;&#xFF0C;&#x670D;&#x52A1;&#x5668;&#x8981;&#x6C42;&#x8BBE;&#x7F6E; Cookie&#xFF0C;&#x6D4F;&#x89C8;&#x5668;&#x4E5F;&#x4E0D;&#x4F1A;&#x5904;&#x7406;&#x3002;</p>
<p>&#x4F46;&#x662F;&#xFF0C;&#x6709;&#x7684;&#x6D4F;&#x89C8;&#x5668;&#x9ED8;&#x8BA4;&#x5C06;<code>withCredentials</code>&#x5C5E;&#x6027;&#x8BBE;&#x4E3A;<code>true</code>&#x3002;&#x8FD9;&#x5BFC;&#x81F4;&#x5982;&#x679C;&#x7701;&#x7565;<code>withCredentials</code>&#x8BBE;&#x7F6E;&#xFF0C;&#x8FD9;&#x4E9B;&#x6D4F;&#x89C8;&#x5668;&#x53EF;&#x80FD;&#x8FD8;&#x662F;&#x4F1A;&#x4E00;&#x8D77;&#x53D1;&#x9001; Cookie&#x3002;&#x8FD9;&#x65F6;&#xFF0C;&#x53EF;&#x4EE5;&#x663E;&#x5F0F;&#x5173;&#x95ED;<code>withCredentials</code>&#x3002;</p>
<pre><code class="lang-javascript">xhr.withCredentials = <span class="hljs-literal">false</span>;
</code></pre>
<p>&#x9700;&#x8981;&#x6CE8;&#x610F;&#x7684;&#x662F;&#xFF0C;&#x5982;&#x679C;&#x670D;&#x52A1;&#x5668;&#x8981;&#x6C42;&#x6D4F;&#x89C8;&#x5668;&#x53D1;&#x9001; Cookie&#xFF0C;<code>Access-Control-Allow-Origin</code>&#x5C31;&#x4E0D;&#x80FD;&#x8BBE;&#x4E3A;&#x661F;&#x53F7;&#xFF0C;&#x5FC5;&#x987B;&#x6307;&#x5B9A;&#x660E;&#x786E;&#x7684;&#x3001;&#x4E0E;&#x8BF7;&#x6C42;&#x7F51;&#x9875;&#x4E00;&#x81F4;&#x7684;&#x57DF;&#x540D;&#x3002;&#x540C;&#x65F6;&#xFF0C;Cookie &#x4F9D;&#x7136;&#x9075;&#x5FAA;&#x540C;&#x6E90;&#x653F;&#x7B56;&#xFF0C;&#x53EA;&#x6709;&#x7528;&#x670D;&#x52A1;&#x5668;&#x57DF;&#x540D;&#x8BBE;&#x7F6E;&#x7684; Cookie &#x624D;&#x4F1A;&#x4E0A;&#x4F20;&#xFF0C;&#x5176;&#x4ED6;&#x57DF;&#x540D;&#x7684; Cookie &#x5E76;&#x4E0D;&#x4F1A;&#x4E0A;&#x4F20;&#xFF0C;&#x4E14;&#xFF08;&#x8DE8;&#x57DF;&#xFF09;&#x539F;&#x7F51;&#x9875;&#x4EE3;&#x7801;&#x4E2D;&#x7684;<code>document.cookie</code>&#x4E5F;&#x65E0;&#x6CD5;&#x8BFB;&#x53D6;&#x670D;&#x52A1;&#x5668;&#x57DF;&#x540D;&#x4E0B;&#x7684; Cookie&#x3002;</p>
<h2 id="&#x975E;&#x7B80;&#x5355;&#x8BF7;&#x6C42;">&#x975E;&#x7B80;&#x5355;&#x8BF7;&#x6C42;</h2>
<h3 id="&#x9884;&#x68C0;&#x8BF7;&#x6C42;">&#x9884;&#x68C0;&#x8BF7;&#x6C42;</h3>
<p>&#x975E;&#x7B80;&#x5355;&#x8BF7;&#x6C42;&#x662F;&#x90A3;&#x79CD;&#x5BF9;&#x670D;&#x52A1;&#x5668;&#x63D0;&#x51FA;&#x7279;&#x6B8A;&#x8981;&#x6C42;&#x7684;&#x8BF7;&#x6C42;&#xFF0C;&#x6BD4;&#x5982;&#x8BF7;&#x6C42;&#x65B9;&#x6CD5;&#x662F;<code>PUT</code>&#x6216;<code>DELETE</code>&#xFF0C;&#x6216;&#x8005;<code>Content-Type</code>&#x5B57;&#x6BB5;&#x7684;&#x7C7B;&#x578B;&#x662F;<code>application/json</code>&#x3002;</p>
<p>&#x975E;&#x7B80;&#x5355;&#x8BF7;&#x6C42;&#x7684; CORS &#x8BF7;&#x6C42;&#xFF0C;&#x4F1A;&#x5728;&#x6B63;&#x5F0F;&#x901A;&#x4FE1;&#x4E4B;&#x524D;&#xFF0C;&#x589E;&#x52A0;&#x4E00;&#x6B21; HTTP &#x67E5;&#x8BE2;&#x8BF7;&#x6C42;&#xFF0C;&#x79F0;&#x4E3A;&#x201C;&#x9884;&#x68C0;&#x201D;&#x8BF7;&#x6C42;&#xFF08;preflight&#xFF09;&#x3002;&#x6D4F;&#x89C8;&#x5668;&#x5148;&#x8BE2;&#x95EE;&#x670D;&#x52A1;&#x5668;&#xFF0C;&#x5F53;&#x524D;&#x7F51;&#x9875;&#x6240;&#x5728;&#x7684;&#x57DF;&#x540D;&#x662F;&#x5426;&#x5728;&#x670D;&#x52A1;&#x5668;&#x7684;&#x8BB8;&#x53EF;&#x540D;&#x5355;&#x4E4B;&#x4E2D;&#xFF0C;&#x4EE5;&#x53CA;&#x53EF;&#x4EE5;&#x4F7F;&#x7528;&#x54EA;&#x4E9B; HTTP &#x65B9;&#x6CD5;&#x548C;&#x5934;&#x4FE1;&#x606F;&#x5B57;&#x6BB5;&#x3002;&#x53EA;&#x6709;&#x5F97;&#x5230;&#x80AF;&#x5B9A;&#x7B54;&#x590D;&#xFF0C;&#x6D4F;&#x89C8;&#x5668;&#x624D;&#x4F1A;&#x53D1;&#x51FA;&#x6B63;&#x5F0F;&#x7684;<code>XMLHttpRequest</code>&#x8BF7;&#x6C42;&#xFF0C;&#x5426;&#x5219;&#x5C31;&#x62A5;&#x9519;&#x3002;&#x8FD9;&#x662F;&#x4E3A;&#x4E86;&#x9632;&#x6B62;&#x8FD9;&#x4E9B;&#x65B0;&#x589E;&#x7684;&#x8BF7;&#x6C42;&#xFF0C;&#x5BF9;&#x4F20;&#x7EDF;&#x7684;&#x6CA1;&#x6709; CORS &#x652F;&#x6301;&#x7684;&#x670D;&#x52A1;&#x5668;&#x5F62;&#x6210;&#x538B;&#x529B;&#xFF0C;&#x7ED9;&#x670D;&#x52A1;&#x5668;&#x4E00;&#x4E2A;&#x63D0;&#x524D;&#x62D2;&#x7EDD;&#x7684;&#x673A;&#x4F1A;&#xFF0C;&#x8FD9;&#x6837;&#x53EF;&#x4EE5;&#x9632;&#x6B62;&#x670D;&#x52A1;&#x5668;&#x6536;&#x5230;&#x5927;&#x91CF;<code>DELETE</code>&#x548C;<code>PUT</code>&#x8BF7;&#x6C42;&#xFF0C;&#x8FD9;&#x4E9B;&#x4F20;&#x7EDF;&#x7684;&#x8868;&#x5355;&#x4E0D;&#x53EF;&#x80FD;&#x8DE8;&#x57DF;&#x53D1;&#x51FA;&#x7684;&#x8BF7;&#x6C42;&#x3002;</p>
<p>&#x4E0B;&#x9762;&#x662F;&#x4E00;&#x6BB5;&#x6D4F;&#x89C8;&#x5668;&#x7684; JavaScript &#x811A;&#x672C;&#x3002;</p>
<pre><code class="lang-javascript"><span class="hljs-keyword">var</span> url = <span class="hljs-string">&apos;http://api.alice.com/cors&apos;</span>;
<span class="hljs-keyword">var</span> xhr = <span class="hljs-keyword">new</span> XMLHttpRequest();
xhr.open(<span class="hljs-string">&apos;PUT&apos;</span>, url, <span class="hljs-literal">true</span>);
xhr.setRequestHeader(<span class="hljs-string">&apos;X-Custom-Header&apos;</span>, <span class="hljs-string">&apos;value&apos;</span>);
xhr.send();
</code></pre>
<p>&#x4E0A;&#x9762;&#x4EE3;&#x7801;&#x4E2D;&#xFF0C;HTTP &#x8BF7;&#x6C42;&#x7684;&#x65B9;&#x6CD5;&#x662F;<code>PUT</code>&#xFF0C;&#x5E76;&#x4E14;&#x53D1;&#x9001;&#x4E00;&#x4E2A;&#x81EA;&#x5B9A;&#x4E49;&#x5934;&#x4FE1;&#x606F;<code>X-Custom-Header</code>&#x3002;</p>
<p>&#x6D4F;&#x89C8;&#x5668;&#x53D1;&#x73B0;&#xFF0C;&#x8FD9;&#x662F;&#x4E00;&#x4E2A;&#x975E;&#x7B80;&#x5355;&#x8BF7;&#x6C42;&#xFF0C;&#x5C31;&#x81EA;&#x52A8;&#x53D1;&#x51FA;&#x4E00;&#x4E2A;&#x201C;&#x9884;&#x68C0;&#x201D;&#x8BF7;&#x6C42;&#xFF0C;&#x8981;&#x6C42;&#x670D;&#x52A1;&#x5668;&#x786E;&#x8BA4;&#x53EF;&#x4EE5;&#x8FD9;&#x6837;&#x8BF7;&#x6C42;&#x3002;&#x4E0B;&#x9762;&#x662F;&#x8FD9;&#x4E2A;&#x201C;&#x9884;&#x68C0;&#x201D;&#x8BF7;&#x6C42;&#x7684; HTTP &#x5934;&#x4FE1;&#x606F;&#x3002;</p>
<pre><code class="lang-http"><span class="hljs-keyword">OPTIONS</span> <span class="hljs-string">/cors</span> HTTP/1.1
<span class="hljs-attribute">Origin</span>: http://api.bob.com
<span class="hljs-attribute">Access-Control-Request-Method</span>: PUT
<span class="hljs-attribute">Access-Control-Request-Headers</span>: X-Custom-Header
<span class="hljs-attribute">Host</span>: api.alice.com
<span class="hljs-attribute">Accept-Language</span>: en-US
<span class="hljs-attribute">Connection</span>: keep-alive
<span class="hljs-attribute">User-Agent</span>: Mozilla/5.0...
</code></pre>
<p>&#x201C;&#x9884;&#x68C0;&#x201D;&#x8BF7;&#x6C42;&#x7528;&#x7684;&#x8BF7;&#x6C42;&#x65B9;&#x6CD5;&#x662F;<code>OPTIONS</code>&#xFF0C;&#x8868;&#x793A;&#x8FD9;&#x4E2A;&#x8BF7;&#x6C42;&#x662F;&#x7528;&#x6765;&#x8BE2;&#x95EE;&#x7684;&#x3002;&#x5934;&#x4FE1;&#x606F;&#x91CC;&#x9762;&#xFF0C;&#x5173;&#x952E;&#x5B57;&#x6BB5;&#x662F;<code>Origin</code>&#xFF0C;&#x8868;&#x793A;&#x8BF7;&#x6C42;&#x6765;&#x81EA;&#x54EA;&#x4E2A;&#x6E90;&#x3002;</p>
<p>&#x9664;&#x4E86;<code>Origin</code>&#x5B57;&#x6BB5;&#xFF0C;&#x201C;&#x9884;&#x68C0;&#x201D;&#x8BF7;&#x6C42;&#x7684;&#x5934;&#x4FE1;&#x606F;&#x5305;&#x62EC;&#x4E24;&#x4E2A;&#x7279;&#x6B8A;&#x5B57;&#x6BB5;&#x3002;</p>
<p><strong>&#xFF08;1&#xFF09;<code>Access-Control-Request-Method</code></strong></p>
<p>&#x8BE5;&#x5B57;&#x6BB5;&#x662F;&#x5FC5;&#x987B;&#x7684;&#xFF0C;&#x7528;&#x6765;&#x5217;&#x51FA;&#x6D4F;&#x89C8;&#x5668;&#x7684; CORS &#x8BF7;&#x6C42;&#x4F1A;&#x7528;&#x5230;&#x54EA;&#x4E9B; HTTP &#x65B9;&#x6CD5;&#xFF0C;&#x4E0A;&#x4F8B;&#x662F;<code>PUT</code>&#x3002;</p>
<p><strong>&#xFF08;2&#xFF09;<code>Access-Control-Request-Headers</code></strong></p>
<p>&#x8BE5;&#x5B57;&#x6BB5;&#x662F;&#x4E00;&#x4E2A;&#x9017;&#x53F7;&#x5206;&#x9694;&#x7684;&#x5B57;&#x7B26;&#x4E32;&#xFF0C;&#x6307;&#x5B9A;&#x6D4F;&#x89C8;&#x5668; CORS &#x8BF7;&#x6C42;&#x4F1A;&#x989D;&#x5916;&#x53D1;&#x9001;&#x7684;&#x5934;&#x4FE1;&#x606F;&#x5B57;&#x6BB5;&#xFF0C;&#x4E0A;&#x4F8B;&#x662F;<code>X-Custom-Header</code>&#x3002;</p>
<h3 id="&#x9884;&#x68C0;&#x8BF7;&#x6C42;&#x7684;&#x56DE;&#x5E94;">&#x9884;&#x68C0;&#x8BF7;&#x6C42;&#x7684;&#x56DE;&#x5E94;</h3>
<p>&#x670D;&#x52A1;&#x5668;&#x6536;&#x5230;&#x201C;&#x9884;&#x68C0;&#x201D;&#x8BF7;&#x6C42;&#x4EE5;&#x540E;&#xFF0C;&#x68C0;&#x67E5;&#x4E86;<code>Origin</code>&#x3001;<code>Access-Control-Request-Method</code>&#x548C;<code>Access-Control-Request-Headers</code>&#x5B57;&#x6BB5;&#x4EE5;&#x540E;&#xFF0C;&#x786E;&#x8BA4;&#x5141;&#x8BB8;&#x8DE8;&#x6E90;&#x8BF7;&#x6C42;&#xFF0C;&#x5C31;&#x53EF;&#x4EE5;&#x505A;&#x51FA;&#x56DE;&#x5E94;&#x3002;</p>
<pre><code class="lang-http">HTTP/1.1 <span class="hljs-number">200</span> OK
<span class="hljs-attribute">Date</span>: Mon, 01 Dec 2008 01:15:39 GMT
<span class="hljs-attribute">Server</span>: Apache/2.0.61 (Unix)
<span class="hljs-attribute">Access-Control-Allow-Origin</span>: http://api.bob.com
<span class="hljs-attribute">Access-Control-Allow-Methods</span>: GET, POST, PUT
<span class="hljs-attribute">Access-Control-Allow-Headers</span>: X-Custom-Header
<span class="hljs-attribute">Content-Type</span>: text/html; charset=utf-8
<span class="hljs-attribute">Content-Encoding</span>: gzip
<span class="hljs-attribute">Content-Length</span>: 0
<span class="hljs-attribute">Keep-Alive</span>: timeout=2, max=100
<span class="hljs-attribute">Connection</span>: Keep-Alive
<span class="hljs-attribute">Content-Type</span>: text/plain
</code></pre>
<p>&#x4E0A;&#x9762;&#x7684; HTTP &#x56DE;&#x5E94;&#x4E2D;&#xFF0C;&#x5173;&#x952E;&#x7684;&#x662F;<code>Access-Control-Allow-Origin</code>&#x5B57;&#x6BB5;&#xFF0C;&#x8868;&#x793A;<code>http://api.bob.com</code>&#x53EF;&#x4EE5;&#x8BF7;&#x6C42;&#x6570;&#x636E;&#x3002;&#x8BE5;&#x5B57;&#x6BB5;&#x4E5F;&#x53EF;&#x4EE5;&#x8BBE;&#x4E3A;&#x661F;&#x53F7;&#xFF0C;&#x8868;&#x793A;&#x540C;&#x610F;&#x4EFB;&#x610F;&#x8DE8;&#x6E90;&#x8BF7;&#x6C42;&#x3002;</p>
<pre><code class="lang-http"><span class="hljs-attribute">Access-Control-Allow-Origin</span>: *
</code></pre>
<p>&#x5982;&#x679C;&#x670D;&#x52A1;&#x5668;&#x5426;&#x5B9A;&#x4E86;&#x201C;&#x9884;&#x68C0;&#x201D;&#x8BF7;&#x6C42;&#xFF0C;&#x4F1A;&#x8FD4;&#x56DE;&#x4E00;&#x4E2A;&#x6B63;&#x5E38;&#x7684; HTTP &#x56DE;&#x5E94;&#xFF0C;&#x4F46;&#x662F;&#x6CA1;&#x6709;&#x4EFB;&#x4F55; CORS &#x76F8;&#x5173;&#x7684;&#x5934;&#x4FE1;&#x606F;&#x5B57;&#x6BB5;&#xFF0C;&#x6216;&#x8005;&#x660E;&#x786E;&#x8868;&#x793A;&#x8BF7;&#x6C42;&#x4E0D;&#x7B26;&#x5408;&#x6761;&#x4EF6;&#x3002;</p>
<pre><code class="lang-http"><span class="hljs-keyword">OPTIONS</span> <span class="hljs-string">http://api.bob.com</span> HTTP/1.1
<span class="hljs-attribute">Status</span>: 200
<span class="hljs-attribute">Access-Control-Allow-Origin</span>: https://notyourdomain.com
<span class="hljs-attribute">Access-Control-Allow-Method</span>: POST
</code></pre>
<p>&#x4E0A;&#x9762;&#x7684;&#x670D;&#x52A1;&#x5668;&#x56DE;&#x5E94;&#xFF0C;<code>Access-Control-Allow-Origin</code>&#x5B57;&#x6BB5;&#x660E;&#x786E;&#x4E0D;&#x5305;&#x62EC;&#x53D1;&#x51FA;&#x8BF7;&#x6C42;&#x7684;<code>http://api.bob.com</code>&#x3002;</p>
<p>&#x8FD9;&#x65F6;&#xFF0C;&#x6D4F;&#x89C8;&#x5668;&#x5C31;&#x4F1A;&#x8BA4;&#x5B9A;&#xFF0C;&#x670D;&#x52A1;&#x5668;&#x4E0D;&#x540C;&#x610F;&#x9884;&#x68C0;&#x8BF7;&#x6C42;&#xFF0C;&#x56E0;&#x6B64;&#x89E6;&#x53D1;&#x4E00;&#x4E2A;&#x9519;&#x8BEF;&#xFF0C;&#x88AB;<code>XMLHttpRequest</code>&#x5BF9;&#x8C61;&#x7684;<code>onerror</code>&#x56DE;&#x8C03;&#x51FD;&#x6570;&#x6355;&#x83B7;&#x3002;&#x63A7;&#x5236;&#x53F0;&#x4F1A;&#x6253;&#x5370;&#x51FA;&#x5982;&#x4E0B;&#x7684;&#x62A5;&#x9519;&#x4FE1;&#x606F;&#x3002;</p>
<pre><code class="lang-bash">XMLHttpRequest cannot load http://api.alice.com.
Origin http://api.bob.com is not allowed by Access-Control-Allow-Origin.
</code></pre>
<p>&#x670D;&#x52A1;&#x5668;&#x56DE;&#x5E94;&#x7684;&#x5176;&#x4ED6; CORS &#x76F8;&#x5173;&#x5B57;&#x6BB5;&#x5982;&#x4E0B;&#x3002;</p>
<pre><code class="lang-http"><span class="hljs-attribute">Access-Control-Allow-Methods</span>: GET, POST, PUT
<span class="hljs-attribute">Access-Control-Allow-Headers</span>: X-Custom-Header
<span class="hljs-attribute">Access-Control-Allow-Credentials</span>: true
<span class="hljs-attribute">Access-Control-Max-Age</span>: 1728000
</code></pre>
<p><strong>&#xFF08;1&#xFF09;<code>Access-Control-Allow-Methods</code></strong></p>
<p>&#x8BE5;&#x5B57;&#x6BB5;&#x5FC5;&#x9700;&#xFF0C;&#x5B83;&#x7684;&#x503C;&#x662F;&#x9017;&#x53F7;&#x5206;&#x9694;&#x7684;&#x4E00;&#x4E2A;&#x5B57;&#x7B26;&#x4E32;&#xFF0C;&#x8868;&#x660E;&#x670D;&#x52A1;&#x5668;&#x652F;&#x6301;&#x7684;&#x6240;&#x6709;&#x8DE8;&#x57DF;&#x8BF7;&#x6C42;&#x7684;&#x65B9;&#x6CD5;&#x3002;&#x6CE8;&#x610F;&#xFF0C;&#x8FD4;&#x56DE;&#x7684;&#x662F;&#x6240;&#x6709;&#x652F;&#x6301;&#x7684;&#x65B9;&#x6CD5;&#xFF0C;&#x800C;&#x4E0D;&#x5355;&#x662F;&#x6D4F;&#x89C8;&#x5668;&#x8BF7;&#x6C42;&#x7684;&#x90A3;&#x4E2A;&#x65B9;&#x6CD5;&#x3002;&#x8FD9;&#x662F;&#x4E3A;&#x4E86;&#x907F;&#x514D;&#x591A;&#x6B21;&#x201C;&#x9884;&#x68C0;&#x201D;&#x8BF7;&#x6C42;&#x3002;</p>
<p><strong>&#xFF08;2&#xFF09;<code>Access-Control-Allow-Headers</code></strong></p>
<p>&#x5982;&#x679C;&#x6D4F;&#x89C8;&#x5668;&#x8BF7;&#x6C42;&#x5305;&#x62EC;<code>Access-Control-Request-Headers</code>&#x5B57;&#x6BB5;&#xFF0C;&#x5219;<code>Access-Control-Allow-Headers</code>&#x5B57;&#x6BB5;&#x662F;&#x5FC5;&#x9700;&#x7684;&#x3002;&#x5B83;&#x4E5F;&#x662F;&#x4E00;&#x4E2A;&#x9017;&#x53F7;&#x5206;&#x9694;&#x7684;&#x5B57;&#x7B26;&#x4E32;&#xFF0C;&#x8868;&#x660E;&#x670D;&#x52A1;&#x5668;&#x652F;&#x6301;&#x7684;&#x6240;&#x6709;&#x5934;&#x4FE1;&#x606F;&#x5B57;&#x6BB5;&#xFF0C;&#x4E0D;&#x9650;&#x4E8E;&#x6D4F;&#x89C8;&#x5668;&#x5728;&#x201C;&#x9884;&#x68C0;&#x201D;&#x4E2D;&#x8BF7;&#x6C42;&#x7684;&#x5B57;&#x6BB5;&#x3002;</p>
<p><strong>&#xFF08;3&#xFF09;<code>Access-Control-Allow-Credentials</code></strong></p>
<p>&#x8BE5;&#x5B57;&#x6BB5;&#x4E0E;&#x7B80;&#x5355;&#x8BF7;&#x6C42;&#x65F6;&#x7684;&#x542B;&#x4E49;&#x76F8;&#x540C;&#x3002;</p>
<p><strong>&#xFF08;4&#xFF09;<code>Access-Control-Max-Age</code></strong></p>
<p>&#x8BE5;&#x5B57;&#x6BB5;&#x53EF;&#x9009;&#xFF0C;&#x7528;&#x6765;&#x6307;&#x5B9A;&#x672C;&#x6B21;&#x9884;&#x68C0;&#x8BF7;&#x6C42;&#x7684;&#x6709;&#x6548;&#x671F;&#xFF0C;&#x5355;&#x4F4D;&#x4E3A;&#x79D2;&#x3002;&#x4E0A;&#x9762;&#x7ED3;&#x679C;&#x4E2D;&#xFF0C;&#x6709;&#x6548;&#x671F;&#x662F;20&#x5929;&#xFF08;1728000&#x79D2;&#xFF09;&#xFF0C;&#x5373;&#x5141;&#x8BB8;&#x7F13;&#x5B58;&#x8BE5;&#x6761;&#x56DE;&#x5E94;1728000&#x79D2;&#xFF08;&#x5373;20&#x5929;&#xFF09;&#xFF0C;&#x5728;&#x6B64;&#x671F;&#x95F4;&#xFF0C;&#x4E0D;&#x7528;&#x53D1;&#x51FA;&#x53E6;&#x4E00;&#x6761;&#x9884;&#x68C0;&#x8BF7;&#x6C42;&#x3002;</p>
<h3 id="&#x6D4F;&#x89C8;&#x5668;&#x7684;&#x6B63;&#x5E38;&#x8BF7;&#x6C42;&#x548C;&#x56DE;&#x5E94;">&#x6D4F;&#x89C8;&#x5668;&#x7684;&#x6B63;&#x5E38;&#x8BF7;&#x6C42;&#x548C;&#x56DE;&#x5E94;</h3>
<p>&#x4E00;&#x65E6;&#x670D;&#x52A1;&#x5668;&#x901A;&#x8FC7;&#x4E86;&#x201C;&#x9884;&#x68C0;&#x201D;&#x8BF7;&#x6C42;&#xFF0C;&#x4EE5;&#x540E;&#x6BCF;&#x6B21;&#x6D4F;&#x89C8;&#x5668;&#x6B63;&#x5E38;&#x7684; CORS &#x8BF7;&#x6C42;&#xFF0C;&#x5C31;&#x90FD;&#x8DDF;&#x7B80;&#x5355;&#x8BF7;&#x6C42;&#x4E00;&#x6837;&#xFF0C;&#x4F1A;&#x6709;&#x4E00;&#x4E2A;<code>Origin</code>&#x5934;&#x4FE1;&#x606F;&#x5B57;&#x6BB5;&#x3002;&#x670D;&#x52A1;&#x5668;&#x7684;&#x56DE;&#x5E94;&#xFF0C;&#x4E5F;&#x90FD;&#x4F1A;&#x6709;&#x4E00;&#x4E2A;<code>Access-Control-Allow-Origin</code>&#x5934;&#x4FE1;&#x606F;&#x5B57;&#x6BB5;&#x3002;</p>
<p>&#x4E0B;&#x9762;&#x662F;&#x201C;&#x9884;&#x68C0;&#x201D;&#x8BF7;&#x6C42;&#x4E4B;&#x540E;&#xFF0C;&#x6D4F;&#x89C8;&#x5668;&#x7684;&#x6B63;&#x5E38; CORS &#x8BF7;&#x6C42;&#x3002;</p>
<pre><code class="lang-http"><span class="hljs-keyword">PUT</span> <span class="hljs-string">/cors</span> HTTP/1.1
<span class="hljs-attribute">Origin</span>: http://api.bob.com
<span class="hljs-attribute">Host</span>: api.alice.com
<span class="hljs-attribute">X-Custom-Header</span>: value
<span class="hljs-attribute">Accept-Language</span>: en-US
<span class="hljs-attribute">Connection</span>: keep-alive
<span class="hljs-attribute">User-Agent</span>: Mozilla/5.0...
</code></pre>
<p>&#x4E0A;&#x9762;&#x5934;&#x4FE1;&#x606F;&#x7684;<code>Origin</code>&#x5B57;&#x6BB5;&#x662F;&#x6D4F;&#x89C8;&#x5668;&#x81EA;&#x52A8;&#x6DFB;&#x52A0;&#x7684;&#x3002;</p>
<p>&#x4E0B;&#x9762;&#x662F;&#x670D;&#x52A1;&#x5668;&#x6B63;&#x5E38;&#x7684;&#x56DE;&#x5E94;&#x3002;</p>
<pre><code class="lang-http"><span class="hljs-attribute">Access-Control-Allow-Origin</span>: http://api.bob.com
<span class="hljs-attribute">Content-Type</span>: text/html; charset=utf-8
</code></pre>
<p>&#x4E0A;&#x9762;&#x5934;&#x4FE1;&#x606F;&#x4E2D;&#xFF0C;<code>Access-Control-Allow-Origin</code>&#x5B57;&#x6BB5;&#x662F;&#x6BCF;&#x6B21;&#x56DE;&#x5E94;&#x90FD;&#x5FC5;&#x5B9A;&#x5305;&#x542B;&#x7684;&#x3002;</p>
<h2 id="&#x4E0E;-jsonp-&#x7684;&#x6BD4;&#x8F83;">&#x4E0E; JSONP &#x7684;&#x6BD4;&#x8F83;</h2>
<p>CORS &#x4E0E; JSONP &#x7684;&#x4F7F;&#x7528;&#x76EE;&#x7684;&#x76F8;&#x540C;&#xFF0C;&#x4F46;&#x662F;&#x6BD4; JSONP &#x66F4;&#x5F3A;&#x5927;&#x3002;JSONP &#x53EA;&#x652F;&#x6301;<code>GET</code>&#x8BF7;&#x6C42;&#xFF0C;CORS &#x652F;&#x6301;&#x6240;&#x6709;&#x7C7B;&#x578B;&#x7684; HTTP &#x8BF7;&#x6C42;&#x3002;JSONP &#x7684;&#x4F18;&#x52BF;&#x5728;&#x4E8E;&#x652F;&#x6301;&#x8001;&#x5F0F;&#x6D4F;&#x89C8;&#x5668;&#xFF0C;&#x4EE5;&#x53CA;&#x53EF;&#x4EE5;&#x5411;&#x4E0D;&#x652F;&#x6301; CORS &#x7684;&#x7F51;&#x7AD9;&#x8BF7;&#x6C42;&#x6570;&#x636E;&#x3002;</p>
<h2 id="&#x53C2;&#x8003;&#x94FE;&#x63A5;">&#x53C2;&#x8003;&#x94FE;&#x63A5;</h2>
<ul>
<li><a href="http://www.html5rocks.com/en/tutorials/cors/" target="_blank" rel="nofollow">Using CORS</a>, Monsur Hossain</li>
<li><a href="https://developer.mozilla.org/en-US/docs/Web/HTTP/Access_control_CORS" target="_blank" rel="nofollow">HTTP access control (CORS)</a>, MDN</li>
<li><a href="https://frontendian.co/cors" target="_blank" rel="nofollow">CORS</a>, Ryan Miller</li>
<li><a href="http://performantcode.com/web/do-you-really-know-cors" target="_blank" rel="nofollow">Do You Really Know CORS?</a>, Grzegorz Mirek</li>
</ul>




<footer class="page-footer-ex"> <span class="page-footer-ex-copyright"> <a href="https://xiaobaiai.net" target="_blank" rel="nofollow">&#x5C0F;&#x767D;AI.&#x6613;&#x540D;</a>, &#x4F7F;&#x7528;<a href="https://creativecommons.org/licenses/by-sa/4.0/" target="_blank" rel="nofollow">&#x77E5;&#x8BC6;&#x5171;&#x4EAB; 4.0 &#x534F;&#x8BAE;&#x53D1;&#x5E03;</a>&#x53D1;&#x5E03; </span> &#xA0;&#xA0;&#xA0;&#xA0;&#xA0;&#xA0;&#xA0;&#xA0;&#xA0;&#xA0; <span class="page-footer-ex-footer-update"> <i>&#x9875;&#x9762;&#x4FEE;&#x8BA2;&#x4E8E;&#xFF1A;</i> 2019-08-22 16:53:02 </span> </footer>
                                
                                </section>
                            
    </div>
    <div class="search-results">
        <div class="has-results">
            
            <h1 class="search-results-title"><span class='search-results-count'></span> results matching "<span class='search-query'></span>"</h1>
            <ul class="search-results-list"></ul>
            
        </div>
        <div class="no-results">
            
            <h1 class="search-results-title">No results matching "<span class='search-query'></span>"</h1>
            
        </div>
    </div>
</div>

    </div>
    <div class="search-results">
        <div class="has-results">
            
            <h1 class="search-results-title"><span class='search-results-count'></span> results matching "<span class='search-query'></span>"</h1>
            <ul class="search-results-list"></ul>
            
        </div>
        <div class="no-results">
            
            <h1 class="search-results-title">No results matching "<span class='search-query'></span>"</h1>
            
        </div>
    </div>
</div>

                        </div>
                    </div>
                
            </div>

            
                
                <a href="same-origin.html" class="navigation navigation-prev " aria-label="Previous page: 同源限制">
                    <i class="fa fa-angle-left"></i>
                </a>
                
                
                <a href="storage.html" class="navigation navigation-next " aria-label="Next page: Storage 接口">
                    <i class="fa fa-angle-right"></i>
                </a>
                
            
        
    </div>

    <script>
        var gitbook = gitbook || [];
        gitbook.push(function() {
            gitbook.page.hasChanged({"page":{"title":"CORS 通信","level":"1.11.7","depth":2,"next":{"title":"Storage 接口","level":"1.11.8","depth":2,"path":"docs/bom/storage.md","ref":"docs/bom/storage.md","articles":[]},"previous":{"title":"同源限制","level":"1.11.6","depth":2,"path":"docs/bom/same-origin.md","ref":"docs/bom/same-origin.md","articles":[]},"dir":"ltr"},"config":{"plugins":["-sharing","chapter-fold","back-to-top-button","search-pro","sharing-plus","myseo","favicon","page-footer-ex","search-pro","livereload"],"styles":{"website":"styles/website.css","pdf":"styles/pdf.css","epub":"styles/epub.css","mobi":"styles/mobi.css","ebook":"styles/ebook.css","print":"styles/print.css"},"pluginsConfig":{"chapter-fold":{},"livereload":{},"page-footer-ex":{"copyright":"<a href='https://xiaobaiai.net' target='_blank'>小白AI.易名</a>, 使用<a href='https://creativecommons.org/licenses/by-sa/4.0/' target='_blank'>知识共享 4.0 协议发布</a>发布","markdown":false,"update_format":"YYYY-MM-DD HH:mm:ss","update_label":"<i>页面修订于：</i>"},"search-pro":{},"search":{},"sharing-plus":{"qq":false,"all":["facebook","google","twitter","instapaper","linkedin","pocket","stumbleupon"],"douban":false,"facebook":true,"weibo":false,"instapaper":false,"whatsapp":false,"hatenaBookmark":false,"twitter":true,"messenger":false,"line":false,"vk":false,"pocket":true,"google":false,"viber":false,"stumbleupon":false,"qzone":false,"linkedin":false},"lunr":{"maxIndexSize":1000000,"ignoreSpecialCharacters":false},"myseo":{"description":"Javascript教程","keywords":"小白AI.易名,xiaobaiai.net,Javascript,入门,教程,博客","titlePrefix":"Javascript教程 - ","titleSuffix":" - 小白AI.易名"},"fontsettings":{"theme":"white","family":"sans","size":2},"highlight":{},"favicon":{"shortcut":"assets/images/favicon.ico","bookmark":"assets/images/favicon.ico","appleTouch":"assets/images/apple-touch-icon.png","appleTouchMore":{"120x120":"assets/images/apple-touch-icon-120x120.png","180x180":"assets/images/apple-touch-icon-180x180.png"}},"back-to-top-button":{},"sharing":{"qq":true,"all":["qq","qzone","twitter","weibo","linkedin"],"douban":false,"facebook":true,"weibo":true,"instapaper":false,"whatsapp":false,"hatenaBookmark":false,"twitter":false,"messenger":false,"line":false,"vk":false,"pocket":false,"google":false,"viber":false,"stumbleupon":false,"qzone":true,"linkedin":false},"theme-default":{"styles":{"website":"styles/website.css","pdf":"styles/pdf.css","epub":"styles/epub.css","mobi":"styles/mobi.css","ebook":"styles/ebook.css","print":"styles/print.css"},"showLevel":false}},"theme":"default","author":"小白AI.易名","pdf":{"pageNumbers":true,"fontSize":12,"fontFamily":"Arial","paperSize":"a4","chapterMark":"pagebreak","pageBreaksBefore":"/","margin":{"right":62,"left":62,"top":56,"bottom":56}},"structure":{"langs":"LANGS.md","readme":"README.md","glossary":"GLOSSARY.md","summary":"SUMMARY.md"},"variables":{},"language":"zh-hans","gitbook":"*","description":"Javascript教程"},"file":{"path":"docs/bom/cors.md","mtime":"2019-08-22T08:53:02.291Z","type":"markdown"},"gitbook":{"version":"3.2.3","time":"2019-08-28T05:00:46.673Z"},"basePath":"../..","book":{"language":""}});
        });
    </script>
</div>

        
    <script src="../../gitbook/gitbook.js"></script>
    <script src="../../gitbook/theme.js"></script>
    
        
        <script src="../../gitbook/gitbook-plugin-chapter-fold/chapter-fold.js"></script>
        
    
        
        <script src="../../gitbook/gitbook-plugin-back-to-top-button/plugin.js"></script>
        
    
        
        <script src="../../gitbook/gitbook-plugin-search-pro/jquery.mark.min.js"></script>
        
    
        
        <script src="../../gitbook/gitbook-plugin-search-pro/search.js"></script>
        
    
        
        <script src="../../gitbook/gitbook-plugin-sharing-plus/buttons.js"></script>
        
    
        
        <script src="../../gitbook/gitbook-plugin-livereload/plugin.js"></script>
        
    
        
        <script src="../../gitbook/gitbook-plugin-search/search-engine.js"></script>
        
    
        
        <script src="../../gitbook/gitbook-plugin-search/search.js"></script>
        
    
        
        <script src="../../gitbook/gitbook-plugin-lunr/lunr.min.js"></script>
        
    
        
        <script src="../../gitbook/gitbook-plugin-lunr/search-lunr.js"></script>
        
    
        
        <script src="../../gitbook/gitbook-plugin-fontsettings/fontsettings.js"></script>
        
    

    </body>
</html>

